Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: 9Cjrl4rbTLSn4xKwIxiGZ4Lo0xAqXMGtSA0TAVEq/Qk=
Subject key identifier: FA:88:D6:28:AF:C1:9C:B6:AA:56:B1:A7:24:62:BD:CC:B4:68:E9:F0
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 019D27DF5C0AF6C9B98C97A18EDCEBFF2D17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 165A
Signing time: Thu 26 Mar 2026 02:00:42 +0000
Manifest this update: Thu 26 Mar 2026 02:00:42 +0000
Manifest next update: Fri 27 Mar 2026 02:00:42 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: bgdmzEALSMKJSnpxEN4vFOrU6TWyekc/HKPxwHarV8E=)
2: ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa (hash: JRuU+ZyopWBcMt/8KJluZ75llM4qdJd/sZ4QglM1TbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:5c:0a:f6:c9:b9:8c:97:a1:8e:dc:eb:ff:2d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: Mar 26 02:00:42 2026 GMT
Not After : Mar 27 02:00:42 2026 GMT
Subject: CN=fa88d628afc19cb6aa56b1a72462bdccb468e9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e7:54:4a:26:33:bc:02:98:0e:ba:74:ef:c5:
9b:58:5d:ab:ce:6a:f1:8e:f8:93:64:28:4f:d5:da:
ce:9a:18:b6:64:b5:3d:e8:40:73:ce:0a:55:90:b6:
03:a5:d5:99:60:38:82:01:8f:60:54:52:0f:48:df:
73:2e:3e:e6:c8:fa:8c:a6:0e:87:fc:82:a4:0d:e2:
da:02:6e:f5:01:f8:a8:b9:22:f1:04:3f:55:0f:c9:
51:a8:67:c0:b6:3e:5c:5b:86:f4:ef:2e:e8:b3:a2:
60:75:fa:e4:e8:9b:f1:21:d7:1c:92:7c:09:d6:39:
b6:d4:8d:53:a2:99:ce:51:63:d9:14:62:9a:5a:34:
6f:ed:90:ce:35:2d:31:43:88:07:25:45:97:e7:2a:
d8:1d:15:63:8b:1d:5d:c0:95:ad:9d:b5:b2:4d:3b:
a3:bc:56:82:db:bf:89:f3:b9:0d:d7:b1:dc:cd:13:
b8:4c:e0:db:d5:58:d4:42:36:48:eb:52:70:6b:c7:
a0:98:04:01:32:2e:1c:4e:81:6a:c7:dc:4c:1e:98:
58:3f:16:be:d7:4f:e3:75:d1:4d:cc:cb:ad:09:ae:
ad:af:d8:4f:ed:37:43:25:26:4d:d4:bc:61:39:23:
b3:bc:0a:14:d3:d2:64:04:a4:1f:b0:0c:f0:11:20:
ae:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:88:D6:28:AF:C1:9C:B6:AA:56:B1:A7:24:62:BD:CC:B4:68:E9:F0
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:70:4c:df:2f:3f:54:c4:79:9c:e1:9a:90:8b:f5:7f:fb:64:
f0:b9:7e:0e:b8:fd:84:6c:e0:0b:10:c5:74:43:e5:22:d5:84:
1e:d4:98:50:0b:03:b4:b1:74:29:16:cc:92:4b:79:6f:14:f6:
00:d4:a1:91:b4:87:6f:dc:18:a1:37:77:65:5d:88:63:90:2b:
1e:6c:04:ee:90:89:53:9e:ff:5a:e5:2f:34:b1:09:9e:92:b3:
3c:c2:29:55:20:80:82:0e:96:2f:3f:02:bd:80:c6:6c:4a:fc:
67:a7:08:59:af:ed:c4:bb:d1:08:bb:12:7a:63:ba:66:a8:63:
a5:db:1e:76:53:ae:a6:e1:ab:a5:e4:9c:0d:82:b1:1d:d7:03:
0f:b8:d0:46:38:c6:15:12:76:50:9e:1f:d5:07:11:65:00:5b:
fc:3b:ed:05:fe:12:ed:79:f3:b1:2b:42:13:bf:8a:f1:03:17:
c3:b4:25:7c:d5:c9:20:fd:c0:41:44:ec:b4:83:b6:b8:5f:55:
b4:69:65:16:97:a7:86:23:22:fb:5b:1c:6e:c4:db:41:a2:0a:
e4:05:6d:ca:af:10:e3:68:60:77:c0:9a:53:ba:58:e4:c5:9b:
6f:19:6e:66:9d:c8:48:ef:e0:70:b2:c7:50:4a:89:bb:ed:9e:
d1:82:6a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:58:44 2026 by rpki-client